[Secure-testing-commits] r57703 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Nov 17 09:24:07 UTC 2017
Author: jmm
Date: 2017-11-17 09:24:07 +0000 (Fri, 17 Nov 2017)
New Revision: 57703
Modified:
data/CVE/list
Log:
new ruby-redis-store issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-17 09:22:50 UTC (rev 57702)
+++ data/CVE/list 2017-11-17 09:24:07 UTC (rev 57703)
@@ -11,7 +11,8 @@
CVE-2017-16867 (Amazon Key through 2017-11-16 mishandles Cloud Cam 802.11 ...)
NOT-FOR-US: Amazon Key
CVE-2017-1000248 (Redis-store <=v1.3.0 allows unsafe objects to be loaded from redis ...)
- TODO: check
+ - ruby-redis-store <unfixed>
+ NOTE: https://github.com/redis-store/redis-store/commit/e0c1398d54a9661c8c70267c3a925ba6b192142e
CVE-2017-1000247 (British Columbia Institute of Technology CodeIgniter 3.1.3 is ...)
NOT-FOR-US: CodeIgniter
CVE-2017-1000246 (Python package pysaml2 version 4.4.0 and earlier reuses the ...)
More information about the Secure-testing-commits
mailing list